insidecybersecurity21h
Defense groups propose providing prime contractors with access to CMMC assessments on Pentagon system
Two major defense associations are proposing to allow prime contractors access to an online system where companies who are part of the defense industrial base will provide the results of their ...
insidecybersecurity21h
FDD calls for legislation to strengthen CISA's joint collaborative environment through enhanced info sharing
Lawmakers should consider legislation to codify and fund a joint collaborative environment at the Cybersecurity Infrastructure Security Agency as work is underway to provide structure to the Joint ...
insidecybersecurity3d
CISA, intelligence community publish details on Iran-affiliated ‘brute force’ attacks targeting critical infrastructure
Cyber threat actors associated with Iran are using rudimentary hacking techniques to force their way into critical infrastructure networks, according to the latest multi-seal advisory from the ...
insidecybersecurity3d
CMMC program director addresses competition, small business needs as rollout of final rule begins
The publication on Tuesday of the final rule to establish the Pentagon’s Cybersecurity Maturity Model Certification program kicks off workstreams developed over the last three years, according to ...
insidecybersecurity4d
Professional Services Council argues ‘narrow’ scope of CMMC program final rule leads to questions on implementation
The Pentagon’s decision to make many comments out of scope from its final rule on the Cybersecurity Maturity Model Certification program raises concerns over how the rollout will work in practice as ...
insidecybersecurity4d
General Dynamics study finds agencies want more targeted guidance on post-quantum cryptography
A lack of targeted guidance on implementing post-quantum cryptography is preventing some agencies from planning their migration to quantum-resistant encryption tools, according to a study from General ...
insidecybersecurity5d
Pentagon releases updated assessment, scoping guides in line with CMMC program final rule
The Defense Department has updated its website for the Cybersecurity Maturity Model Certification program with the latest versions of guides for the assessment and scoping, the CMMC model and a FAQ ...
insidecybersecurity6d
CISA advisory committee approves recommendations to further secure by design, critical infrastructure engagements
The CISA Cybersecurity Advisory Committee approved recommendations on Friday from four subgroups to help the agency measure the impact of its secure by design efforts and enhance work to support ...
insidecybersecurity6d
The Week Ahead: NIST hosts cyber career series; Venable event on EU cyber directive update
NIST’s Cybersecurity Career Week events include webinars and interest group meetings on cyber workforce issues and small business. Career week programming started Monday with a workshop at the ...
insidecybersecurity10d
Election Assistance Commission promotes incorporating cyber incident response communications processes for state, local officials
Election officials should prioritize preparing their incident response processes to promote effective public communication amid potential cyber incidents on Election Day, according to a GOP member of ...
insidecybersecurity10d
Tech group urges Defense Dept. to harmonize incident reporting requirements as part of CMMC acquisition rulemaking
The Information Technology Industry Council identifies concerns over the Pentagon’s plans on cyber incident reporting from contractors in the context of the Cybersecurity Maturity Model Certification ...
insidecybersecurity10d
Cyber policy vet Todt sees more CISA investment to come under incoming administration
Election security will continue to be a priority for the Cybersecurity and Infrastructure Security Agency under a Trump or Harris administration, according to cyber policy veteran Kiersten Todt who ...